oss-security - Re: CVE id request: vlc

Openwall Project		/home Owl JtR Pro crypt pam_passwdqc tcb phpass scanlogd popa3d msulogin / Linux BIND / advisories presentations / services donations / wordlists passwords / news community lists wiki CVSweb mirrors signatures
bringing security into open environments

Password Recovery Resources on the Net

[<prev] [next>] [<thread-prev] [thread-next>] [month] [year] [list]

Date: Sun, 24 Aug 2008 11:53:09 +0300
From: PÄ±nar YanardaÄ. <pinar@...dus.org.tr>
To: oss-security@...ts.openwall.com
Subject: Re: CVE id request: vlc

Nico Golde wrote On 24-08-2008 03:13:
> Hi,
> there seems to be a buffer overflow in videolans mms
> handling:
> http://www.orange-bat.com/adv/2008/adv.08.24.txt
>    

Btw, a vendor patch has been released:
http://mailman.videolan.org/pipermail/vlc-devel/2008-August/048488.html

> Can I get a CVE id for this?
>
> Cheers
> Nico
>
>    


-- 
PÄ±nar YanardaÄ.
http://pinguar.org

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.